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Method and device for accessing a telecommunication 
netwoA and for billing telecommunication services. 

lOOOll The invention .elates to a method and to a device for accessing a 

Wecommunications network and for billing telecommunications services according «> the 

generic term ofthe independent patent claims. 

[00021 Thedescribedinventionpresentsnovelprocesseswiairespeottotheclassrcal 

„,echanismsofne.«orkoperators(asarulemobileradio)forthem.omakeservicesavailable 

U, their customers and to take payments from the latter for the performance of same, in thrs 

context, it is primarily a matter of new access mechanisms and of means for the (mobae) 
^.ecommunicaUon network, for modified security mechanisms, as well as for innovatrve 
punting methods. In the interest of simpUfcation fte invention is described m ttre 
foIlowmgon,hebasisofmobileradioneUvorksofth=OSMstandard.buti.isalsoapphcaWe 

«, other telecommunication networks. in«.far as the limit conditions given m the 

specification are also applicable to these networks. 

(0O031 In general it can be said that a mobile radio telephone services operator, by 
mea„sofhlstelecommumcationne.work,se,supanmfrastruc«rrewhichmakesposs,ble,he 

utilization of certain s^vices (primarily telephony). These services can be used by any 
subscriber under the fulfllhnent of certain boundary conditions, in return for payment. The 
networkoperatordecidesineachindividualcaseto which subscriberheaUowsaccessU>h.s 

,e,ecommunica.ionnetwork(and.herewi.htohisservices).a.rfwhichsubscriberheexcludes 
from tire claiming ofthe services associated with the access, h. tire classical case ti,e« axe 
set-ups ti«t allow a subscriber an access entitlement to a telecommunication network: 
a) on a subscription basis: 

The subscriber signs a contract with a home operator, which makes possible for tire 
subscribertheuseofcertainservicesfortherunningtimeoftirecontract. Typical forthrsset- 

upisti^ttireuserpaysasaruleacontinuousbasic amount and, fortireclaimingofservrces, 
a quantity-dependent fee. The payment occurs as a rule on a creditor basis per monthly 

account. 


for these m advance. For this he Th„,„„rU operator checks the type and 

par..cu.ar.o.heP-.^s..a^u^^-^^^^ 

amount of the services used and, after me su 

again withdraws the access entitlement. ,w there exist two variants for 

u f«r the GSM mobile radio networks, there exisxiwu 
[0004] Especially for the UMvimuu 

subscriber uses at leas, .n par. *e ^ ^ 

°'--'^'"°™'^"^=^cL*a..hecontro,of*enet«orkope,a»r 

10005) The set-ups descnbed make case 
„.„.heaccessen.i.e.nentof.hesubscHbersr^re.n«ace^^^^^^ 

o,.ee.c.us.eutUi.ationofthehon>ene.«orka^^.son^^^^^ 

a foreign neuvork there are defined mechamsms for the OSM v, 

"^•^trThe tecMca. n.e.un, «.ch ntakes ^s ^ * ^da I 

^..beride„...odu,eCS^inco— — ^^^^^^ 

«Mch are deposited in the home register (Ht.R) the 

visitor register (VLR). UlUmateiy *e SIM represent «.e basts *a p 

(Home or Visited) to check the access entitiement of the su^b^^ ^ 

U> telecommunication ne«™rks and for tt.e btlhng ^ 
as compared ,o the classical mechanisms, ts smtpler and more con 
„t»orkopera«>ranaa.so^*.— ^^^^ 
[0008] This problem is soiveu 


patent claims. 
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,00091 TT.e classical se.-up ensures «o teiamen«a poin.s about A. access 

mechanisms described: 

The network operator knows who the subscriber is 
, ^re:«™*„U^..ows*a.he.«ceM»g(ora>.eadyhas.ceived,p.=^en. 

for the service claimed. , . . , .i 

,„.0, Subs«.«a..ycc„siae«d.ac»a..yonlypoin.b)isdecisive. ms.s...ew.. 
e„sJaccorU«>*"-enaon.mwhichcase.however.*ec.assica.s«-up,saba^d„ned. 

Z.A-^>"S.o*.inve«io«*e.ho,as.asin«.ec.ass.case..e« 

- network operator makes available an inftasttucUare and services; 

- these can be used in return for payment; 

the network operator controls the access to this services. 

,n contract to the two classical possibilities-over subscription or over 
p.,„,elnJvance(Prepaid)inordertoobtainaccessentiUen.en.tothene.work-a.or<.u,g 

to the invention the following is provided: 

;o.3,Thesubscn-ber.ustinadvance<orsubse<,uent,,noti<ythe„etworkop^^^ 

inJmanner(orn.ustconvince.hispar.y)thatapayn,entfor.heservicere,ues.ed(or.o 
bere,uested)eitherisbeingmade.orhassalreadybeenmade,ashe: 
T prov s beyond doubt his identity and a dependability associated .herew,th(f 
Lantple; an, the federal ChanceUor of the Federal RepubUc of Gennany . usnrg 
a digital signature, for example. 
M pa^s directly over dependable mechanisms (EC card, electronic exchange) 

Is beyond doubt his associaUon with a depen*a,le third par^ who takes 
.sponsibility for the paymentCacr^t card organization, for example). 
,00141 If the subscriber canfuimloneof«.eabove-mention=dre,ues.s(a.b).orc), 

thenpriLytheclalmofthenetworkoperatortoobtainingapaymentftomthesubscn^ 
tXr«ontheprocesscarriedout,andontheprocessenvir„nmen..ev»* 

Z "Who is *e subscHberr is to be « which, to be sure, is no. compulsonly 

""^OOlSlEveracoor^ngtovariantsincharacterandi.fonnofexecution.thedemands 

ofthe Jkoperatorin,ega.dto.hecer.ah,tyofpaymentby.esub^ber.^^^^^ 
.lfferent.alsoinc„mparisontothecUssical set-up. ■n.emeasureofseeuntyl.es.tohesure. 


solely in the judgment or estimation of the network operator. For the clarification of this fact 
there serves the classical set-up in the GSM network, in which the network operator 
decides on the technical security of the SIM; 

decides freely about the authentication algorithm (even the selection of a simple 
"XOE-algorithm" would be allowed): 

he himself determines the individual subscriber key (Ki) (even a constant key for all 
the subscribers would be allowed); 

decides on the security level of the entire key management process (generation, 
transport, storage). 

[0016] According to a preferred form of execution of the invention it is provided to 
use a credit card as payment medium. All applications of hitherto which describe the use of 
credit cards as payment medium presume that the subscriber in principle has an access 
entitlement to a communication network, which he has already obtained by one of the above 
variants (subscription. Prepaid). The paying per credit card (predominantly of third parties) 
are settled in this way (likewise over the credit card). There is a band width, there, of forms 
of execution possibilities which differ in security and in user-friendliness. Let there be 
mentioned, for example, the following variants: 

- the subscriber gives his credit card nvimber to a search server; 

- he uses the keyboard (DTMF-tones) for the input of his credit card number; 

- he sends an SMS to a special server with his credit card data; 

- with the aid of his MSISDN or IMSI an allocation to his credit card is established (which 
the subscriber has made known in advance to the network operator). 

[0017] What is novel in the process described here is that there is made possible for 
the subscriber the claiming of telecommunication services even without valid (classical) 
access entitlement, as he proves his good faith with respect to the network operator by means 
of a credit card. 

[0018] In the identification process over the credit card again different variants are 
conceivable: 

a) The subscriber (not registered in the telecommunication network) obtains access only 
to a certain target (possibly by means of any arbitrary call number), under which he 
can identify himself by means of input of his credit card number (as a rule on "per call 


basis"). This may include certain plausibility and security checks as well, such as, for 
example, pass word protection, the input of additional personal data, on line check 
of the data with the credit card organization, etc. 

b) The subscriber obtains the right to outgoing brief reports and can be registered in a 
same manner as under a). 

c) hi the event that the credit card is chip-card based, the subscriber communicates his 
credit card data electronically, therefore directly with his credit card. This can take 
place in various ways: 

- the end apparatus permits an access to a second card reader in which there 
is inserted the subscriber's credit card; 

- the end apparatus accepts the credit card instead of the SIM. Instead of the 
IMSI (as in GSM) the credit card number is sent in full or in part to the 
network, with the registration procedure. The network operator must be in a 
position, there, to distinguish this case from the 

classical registration procedure. 

d) The network operator can himself perform an allocation between the SIM (not 
registered in the classical sense) and a credit card. This requires a previous, 
unrepeated procedure, in which this allocation is established. 

[0019] In order to make ppssible a service (as a rule telephony) for subscribers not 
reachable by telephone (in the classical sense) then, depending on the character of the set-up 
certain system preconditions are to be created (here for example GSM) which fulfill the 
following requirements: 

- to a not roaming-qualified or non-registered or non-authenticated subscriber an 
access to the telecommunication network is to be granted; 

- the access permits only a restricted functionality (for example only outgoing calls 
(MoC) to a certain target/destination; 

- conceming the access a payment process is established by means of a credit card; 

- a sure identification of the subscriber accomplished over the credit card allows him 
the unrestricted use of the network (for example MoCs); 

- the billing for the service is based on the use of the credit card (for example on the 
credit card account). 


[0020] The described process opens up new possibilities both for the subscribers and 
also for the network operator concerning service utilization and mutual business relationship, 
and has a number of advantages. 

[0021] For the subscriber who is in possession of a credit card this process has the 
advantage, without valid (telecommunication) subscriber relation or without valid roaming 
entitlement, nevertheless to obtain the services of a network operator. 

[0022] For the network operator this likewise has a substantial advantage. The 
services that the network operator makes available to the (mobile radio) subscribers reqxiire 
no registration. Registration means, for the network operator, the preparing of corresponding 
system resources, which again is very cost-intensive. Thus every personalized SIM, even if 
it is not yet activated-therefore has no MSISDN and services allocated to it-has resources 
in HLR/AC or in the card management system KMS. Since these resources are, on the one 
hand, expensive and are, on the other hand also numerically limited (number ranges for 
MSISDN) certain set-ups are forbidden such as, for example, a large-scale keeping in stock 
of SIMs, or a wide area distributing of cards into the area. 

[0023] Unregistered SIMs have this restriction in large part. Thus it is entirely 
imaginable to distribute so-called "Simple-SIMs" in large number to end customers or points 
of sales, which would open up quite different marketing approaches. By a Simple-SIM in the 
simplest case a chip card is to be understood, which has, as sole functionality, the capacity 
of making possible the registration procedure for an end apparatus, as it makes available an 
IMSI. The IMSI does not have to be registered with the network operator, nor must the 
Simple-SIM be authenticated for-as described above-the network operator 
takes up this stain and with these cards offers the registration per credit card. For example, 
it may be provided that each credit card customer obtains with his monthly bill a Simple-SIM 
sent to him. This Simple-SIM is installed in a cellular telephone and permits the (restricted) 
access to a mobile radio network, as the registration is developed over the credit card. The 
billing for the telecommunication services used occurs likewise over the credit card. Through 
elimination of the necessity to sign a subscription per contract, it is entirely imaginable to 
market the simple SIMs also over newsstands, filling stations, trade chains, etc. Likewise the 
possibility is offered to sign agreements with end apparatus producers, so that the latter will 
already supply their end apparatuses with a simple SIM of a network operator. This lies both 


in the interest of the network operator as well as in the interest of the end apparatus producers 
and end customers, since the end apparatus is already telephonable without the signing of 
subscription contract. 

[0024] A variant may consist, for example, in already forming the Simple-SIM in 
such manner that it can be transformed into a regular SIM in the event that the subscriber 
decides to enter into a subscription contract with the network operator. This can be 
accomplished by subsequently applying functions to the SIM (over-the-air) or clearing, as 
well as bringing the card data into the corresponding system in the network or clearing. 

[0025] In the following the invention is explained in detail with reference to the 
drawing figures. In the process further features and advantages of the invention are yielded. 
In the drawing: 

Fig. 1 shows Entering into the GSM network by means of error evaluation of the HLR; 
Fig. 2 Identification and call build-up over credit card server (CC-Server); 

Fig. 3 Entry into the GSM network by means of Simple-SIM and Simple-HLR. 

[0026] The following depictions 1 and 2 show a first implementation variant of the 
invention. Fig. 1 shows an example for an entry procedure and the system adaptation 
associated therewith and Fig. 2 describes the identification process of a subscriber by means 
of credit card. 

[0027] According to the invention a service use in the mobile radio network is made 
possible for a subscriber even without a valid SIM. Technical intervention is made there at 
the point where in the classical case the identification and authentication procedures of the 
network operator begin. 

[0028] Let us take as an example the case according to Fig. 1 , that an invalid SIM 2 
is used in the end apparatus 1, and therewith it is attempted to obtain access to a (GSM) 
mobile radio network. Invalid SIM means in this context: 

- not registered (IMSI unknown to the Home Operator) 

- not capable of roaming (the IMSI belongs to a Home Operator who has not issued 
any Roaming permit to the subscriber) 

- not authentic (the authentication procedure fails, for example because of false Ki). 
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[0029] In all cases in the classical case the network operator (sends) a corresponding 
error report to the end apparatus 1 and denies access to his infrastructure (an exception if 
made exclusively for the emergency call "112"). 

[0030] The new set-up alters the process of hitherto insofar that the network operator 
does, to be sure, register that the SIM 2 used has no access entitlement in the classical sense, 
but he does not in principle deny the access to the subscriber. On the contrary, the network 
operator offers the subscriber the opportunity to identify himself by means of suitable 
procedures, alternatively, for example, via his credit card. If the identification is successful 
in the meaning of the network operator, then the party offers the subscriber a certain spectrum 
of services. 

[0031] The network operator achieves a certain "payment guarantee" by the security 
of the defined identification mechanism as well as by the usual payment guarantees of credit 
card firms on claiming of service performances to their customers. 

[0032] A person would like to register himself over a mobile radio apparatus 1 in the 
mobile radio network, and telephone over this mobile radio network. The subscriber has a 
subscriber identification module 2 (SIM) which contains an intemational mobile subscriber 
identification (IMSI), it being assumed that the IMSI is not registered in the mobile radio 
network concemed and that the SIM is not roaming-entitled in the mobile radio network 
concerned. This means that the person normally by means of the SIM 2 cannot register 
himself in the mobile radio network concemed and avail himself of its services. 

[0033] According to the invention, however, this is now possible, as first of all a 
report of the end apparatus 1 occurs at the appropriate base station control 3 (BSC). Since 
the end apparatus 1 or SIM 2 is not hitherto registered, first of all a Location Update 
Procedure is sent over the mobile intermediation point 4 (MSG) and the visitor register 5 
(VLR) to the home register 7 (HLR), at which inter alia the IMSI deposited on the SIM 2 is 
transferred to the HLR 7. The HLR 7 checks whether the IMSI is registered—in this case it 
is not~and sends an error report (ERROR) back to the VLR 5 that the IMSI is not known. 
In the VLR a special module 6 is arranged, the assignment of which is to catch up these 
special error reports, evaluate them, and release correspondingly predetermined actions. 


[0034] Simultaneously the normally executed authentication and cipher procedures 
are switched off and the Location Update Procedure is concluded, as the accomplished 
simplified residence/say registration is positively confirmed. 

[0035] Fig. 2 shows the call build-up after completed report of the end apparatus 1 
or of the SIM 2 in the mobile radio network. The call wish of the end apparatus 1 is 
forwarded over the BSC 3 and the MSG 4 to the VLR 5. Initiated by the special module 6 
which releases a special treatment of the call wish, there occurs first of all a blocking (ODB: 
Operator Determined Barring) of the further connection build-up to the desired call number. 
Instead of this, the call is rerouted by means of an established Routing to a specially arranged 
credit card server 8 (CC-Server), which either is a part of the mobile radio network, therefore 
govemed by the network operator, or can be connected extemally to the mobile radio 
network. 

[0036] The CC-Server 8 begins a dialog (speech dialog or text display) with the 
subscriber, in which the subscriber is requested to give his credit card number and its 
expiration date, for example over the keyboard of the end apparatus. These data are 
forwarded to the CC-Server, The CC-Server 8 checks the data given by the subscriber 
(validity, barring notations, etc.) of the credit card and in the "good" case gives release to the 
mediating station MSC 4 or the VLR 5, to switch through the call wish of the subscriber. 

[0037] There occurs a more regular call build-up to the call number desired by the 
subscriber, in which the fees that have fallen due for the connection are computed by the 
network operator with the aid of the subscriber credit card data. 

[0038] A special form of execution of the invention according to Fig. 3 preferably 
uses, as access medium to the GSM network, a chip-card in the form of a so-called Simple- 
SIM 9, which is registered in the GSM network of the Home Operator, to be sure, but which, 
with respect to a Standard-SIM 2 is constructed with clearly reduced functionality. Every 
Simple-SIM has a special IMSI which is chosen, for example, in such manner that it 
characterizes the Simple-SIM clearly as such. It would also be possible to use the same IMSI 
for all issued Simple-SIMs, since the IMSI is not needed for the identification of a certain 
subscriber, but exclusively for the identification of a Simple-SIM. 

[0039] Even a set-up to use a chip card-based card directly as access medium would 
be possible, provided that the end apparatus used supports this. 


-10- 


[0040] In the example according to Figs. 1 and 2 also the use of a Simple-SIM 9 or 
of a special credit card is conceivable. 

[0041] On network side there is arranged in addition to the regular HLR 7 a so-called 
Simple-HLR 10, which is appropriate exclusively for the registration of the simple SIMs. 
Like the regular HLR 7, the simple HLR 10 used for the registration of the simple SIMs also 
must have certain functionalities, especially at its interface point; but internally it can clearly 
be more simply implemented and, for example, have only one standard subscriber profile, no 
MSISDNa, simplified authentication mechanisms, etc. At least the simple HLR 10 must be 
capable of recognizing the IMSIs allocated to the simple SIMs as such. 

[0042] Analogously to the example of execution according to Figs. 1 and 2, the end 
apparatus or the simple SIM 9 reports to the mobile radio network, as first of all a Location 
Update Procedure is initiated. With the aid of the IMSI commvinicated from the simple SIM 
9, the simple HLR 10 recognizes that a special handling of this connection wish (of the 
subscriber) is necessary. Since, however, the IMSI of the simple SIM is known to the simple 
HLR 1 0, a regular entering of the end apparatus 1 into the mobile radio network is permitted, 
with use of the corresponding authentication and cipher mechanisms. There it is possible to 
use simplified authenticating and coding parameters which can be carried out with constant, 
uniform Challenge/Response pairs or with variable Challenge/Response pairs which are 
generated in the simple HLR 10 by the cryptographic process. 

[0043] Despite a completed authentication of subscriber wdth the aid of his Simple 
SIM 9, the call further-switching by the simple HLR 10 is at first blocked, as an error report 
(ERROR) is given back to the VLR 5. 

[0044] The special module 6 in the VLR 5 provides that the error reports of the 
simple HLR 10 are correspondingly evaluated and converted. In the use of ODB reports the 
call wish analogously £is in the form of execution example according to Figs. 1 and 2, is then 
rerouted onto a credit card server 8, where the identification of the subscriber per credit card 
occurs. The subscriber can then dial the target (destination) call number, and the call build 
up to the desired target call number can take place. With the use of an IN-trigger, the target 
call number can already be dialed in the dialing of the CC-server 8. 
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